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ESTABLISH A SESSION KEY 
BETWEEN THE SERVER APPLICATION 
AND THE AGENT 



ESTABLISH A CONNECTION 
BETWEEN THE SERVER APPLICATION 
AND AN INTERMEDIATE 
NODE (E.G. ,A WEB SERVER) VIA 
A RELAY MODULE 
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TRANSFER DATA BETWEEN THE 
AGENT & SERVER APPLICATION 
THROUGH THE RELAY 
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( START ) 



GENERATE SESSION (SECRET) KEY (RSA AIG IS 
USED TO TRANSFER SESSION KEY) 
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ENCRYPT SESSION KEY USING APPLICATION 
MEASUREMENT SERVER PUBLIC KEY (RSA AIG). 

NOTE: THE APPLICATION MEASUREMENT SERVER 
KEY DOES NOT HAVE TO BE VERIFIED BECAUSE IT IS 
A PART OF THE AGENT CODE THAT THE USER (VIA 
BROWSER) VERIFIED SIGNATURE WHEN THE AGENT 
CODE WAS DOWNLOADED 
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COLLECT MEASURED DATA 
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ENCRYPT MEASURED DATA USING SESSION (SECRET) 

KEY 
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SEND ENCRYPTED MEASURED DATA AND 
ENCRYPTED SESSION KEY TO THE APPLICATION 
MEASUREMENT SERVER VIA WEB SERVER. 



NOTE: THE ENCRYPTED SESSION KEY HAS TO BE 
APPENDED TO THE ENCRYPTED DATA IF: (1) IF THIS IS 
THE FIRST TIME DATA IS SENT OR (2) IF THE SESSION 

KEY HAS TO CHANGE (SECURITY POLICY MAY 
REQUIRE CHANGING SESSION KEY FROM TIME TO TIME) 
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DECRYPT RECEIVED DATA (E.G., CONFIGURATION 
DATA) AND PROCESS IT. 
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INSTANTIATE RELAY MODULE BY CONTACTING WEB 
SERVER USING RELAY MODULE URL WITH THREE 
PARAMETERS: RELAY MODULE PROGRAM NAME 
PORT 561 AND PORT 562. 
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CONNECT TO RELAY MODULE LISTENING ON PORT 562| 
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READ DATA FROM THE CONNECTION WITH RELAY 

MODULE 
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RETRIEVE ENCRYPTED 
SESSION KEY AND 
DECRYPT USING 
PRIVATE KEY 
(RSA AIG) 



1 



SEND (WRITE ON THE CONNECTION TO THE RELAY 
MODULE) ACK OR ENCRYPTED DATA (E.G., 
CONFIGURATION DATA) TO MEASURING AGENT 
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DECRYPT READ MEASURED DATA USING SESSION 

KEY 
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PROCESSED MEASURED (RECEIVED) DATA 
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EXTRACT FROM THE APPLICATION MEASURING 
SERVER URL REQUEST: THE RELAY MODULE 
PROGRAM NAME (OR URL IF THIS IS DOWNLOADABLE 
MODULE) AND TWO PORTS (561 AND 562) 
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EXECUTE RELAY MODULE PROGRAM WITH TWO 
PARAMETERS (561 AND 562): 

561 - THE PORT ON WHICH TO LISTEN FOR 
INCOMING CONNECTION FROM FORWARDING 

MODULE(S) 

562 - THE PORT ON WHICH TO LISTEN FOR 
INCOMING CONNECTION FROM THE APPLICATION 

MEASUREMENT SERVER 
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OBTAIN TWO PORT NUMBERS (561 AND 562) FROM 
INPUT PARAMETERS (SET BY INSTANTIATION 
MODULE) 
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LISTEN ON PORT 562 FOR CONNECTION FROM 

APPLICATION MEASUREMENT SERVER. 
NOTE: THIS CONNECTION SHOULD STAY OPEN. 
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CONNECT ON PORT 561 (FORWARDING MODULE) 



READ DATA ON PORT 561 (FROM FORWARDING 
. MODULE) 



DISCONNECT FROM 
PORT 561 
(FORWARDING MODULE) 



WRITE DATA ON PORT 562 (TO APPLICATION 
MEASUREMENT SERVER) 



1018 
1024 



■1028 



READ DATA ON PORT 562 (FROM APPLICATION 
MEASUREMENT SERVER) 
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WRITE DATA ON PORT 561 (TO FORWARDING 
. . MODULE) 
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CONNECT TO PORT 561 OF THE RELAY MODULE 
(TRIGGERED BY MEASURING AGENT URL REQUEST) 
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TRANSFER 
"CANNOT TRANSFER DATA" 
MESSAGE BACK 
TO MEASURING 
AGENT VIA 
WEB SERVER 
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EXTRACT DATA FROM THE URL REQUEST SENT BY 
MEASURING AGENT 514 
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WRITE DATA ON THE OPEN CONNECTION TO RELAY 

MODULE 560 
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WAIT FOR ACK (ACKNOWLEDGMENT) AND OPTIONAL 
REPLY DATA (E.G., RECONFIGURATION INFORMATION) 
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TRANSFER RECEIVED REPLY DATA BACK TO 
MEASURING AGENT (514) VIA WEB SERVER 
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